[Pkg-alsa-devel] Bug#301164: libasound2-dev: nested functions cause all loaders of libasound.so to have executable stacks
Brad Spengler
Brad Spengler <spender@grsecurity.net>, 301164@bugs.debian.org
Thu, 24 Mar 2005 00:27:45 -0500
Package: libasound2-dev
Version: 1.0.8-3
Severity: important
objdump -x /usr/libasound.so reports:
STACK off 0x00000000 vaddr 0x00000000 paddr 0x00000000 align 2**2
filesz 0x00000000 memsz 0x00000000 flags rwx
This is due to nested functions in the alsa library. These have been
fixed in other distributions (Fedora, Gentoo). Not fixing this problem
breaks applications that use this library on PaX systems and silently
disables additional security on exec-shield systems.
-Brad
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.11.5-grsec
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages libasound2-dev depends on:
ii libasound2 1.0.8-3 ALSA library
ii libc6-dev [libc-dev] 2.3.4-1 GNU C Library: Development Librari
-- no debconf information